Problems of authentification

Fri, 21 Sep 2001 11:04:15 -0700 

Hi Sliders,

I have configure my slide server using the tomcat security realm (not
the slide realm). I create two users (account and creative).
Each of has full access to his own respective webfolder (/files/account
and /files/creative). 
Everytime, I connect as account, it works fine : I can do everything I
want on /files/account and only read on /files/creative

Here is my problem : 
when I put a word file on the folder /files/account/ no problems : but
every time I open this file, I have to log again. Is it possible to
avoid this by using no security constraint on this file only ?
In fact, I would like to launch word from a java application but because
word is an external process, it is not possible for me to pass trough
the pop up at the starting of word.

Does anybody have a clue ?

Stef

PS : I join the domain.xml file, it could be usefull... <<Domain.xml>> 



<?xml version="1.0"?>

<!--
   Project		: MCCANN CONTENT MANAGER SERVER 
   File			: domain.xml
   Purpose		: Definition and configuration of the slide structure used by the
   			  CM server (version 1.0.14) 
   Copyright		: (c) ATERMON - 2001 - All Rights Reserved
   Comments		: 
   	SDJ - 21/09/01 - Last modifications of the base configuration
-->

<slide logger="org.apache.slide.util.logger.SimpleLogger" logger-level="6" default="slide">
  
<namespace name="slide">   
    <definition>
      <store name="memory">
        <nodestore classname="slidestore.reference.MemoryDescriptorsStore">
        </nodestore>
        <securitystore>
          <reference store="nodestore" />
        </securitystore>
        <lockstore>
          <reference store="nodestore" />
        </lockstore>
        <revisiondescriptorsstore>
          <reference store="nodestore" />
        </revisiondescriptorsstore>
        <revisiondescriptorstore>
          <reference store="nodestore" />
        </revisiondescriptorstore>
        <contentstore classname="slidestore.reference.FileContentStore">
          <parameter name="rootpath">d:/temp/contentstore/</parameter>
          <parameter name="version">false</parameter>
          <parameter name="resetBeforeStarting">true</parameter>
        </contentstore>
      </store>
      <scope match="/" store="memory" />
    </definition>

    <configuration>
      <default-action>/actions</default-action>
      <read-object>/actions/read</read-object>
      <create-object>/actions/write</create-object>
      <remove-object>/actions/write</remove-object>
      <grant-permission>/actions/manage</grant-permission>
      <revoke-permission>/actions/manage</revoke-permission>
      <read-permissions>/actions/manage</read-permissions>
      <lock-object>/actions/write</lock-object>
      <kill-lock>/actions/manage</kill-lock>
      <read-locks>/actions/read</read-locks>
      <read-revision-metadata>/actions/read</read-revision-metadata>
      <create-revision-metadata>/actions/write</create-revision-metadata>
      <modify-revision-metadata>/actions/write</modify-revision-metadata>
      <remove-revision-metadata>/actions/write</remove-revision-metadata>
      <read-revision-content>/actions/read</read-revision-content>
      <create-revision-content>/actions/write</create-revision-content>
      <modify-revision-content>/actions/write</modify-revision-content>
      <remove-revision-content>/actions/write</remove-revision-content>

      <userspath>/users</userspath>
      <guestpath>guest</guestpath>
      <filespath>/files</filespath>
      <parameter name="dav">true</parameter>
      <parameter name="standalone">true</parameter>

      <role name="root">slideroles.basic.RootRole</role>
      <role name="user">slideroles.basic.UserRole</role>
      <role name="guest">slideroles.basic.GuestRole</role>

      <auto-create-users>true</auto-create-users>

      <!-- Default properties mapping -->
      <default-property name="foo" namespace="nsfoo/" value="bar" role="user"/>
      <default-property name="password" namespace="slide/" value="" role="user"/>

    </configuration>

<!-- DATA DESCRIPTION (data)* -->    
    <data>     
      <objectnode classname="org.apache.slide.structure.SubjectNode" uri="/">       
        <permission action="/actions" subject="root"/>
        <permission action="/actions/read" subject="user" inheritable="false"/>
        <permission action="/actions/read" subject="nobody" inheritable="false"/>

<!-- USER DECLARATION -->               
        <objectnode classname="org.apache.slide.structure.SubjectNode" uri="/users">
          
          <!--permission action="/actions" subject="~"/-->
          <permission action="/actions" subject="root" inheritable="false"/>
          <!--permission action="/actions" subject="guest" inheritable="true" negative="true"/>
          <permission action="/actions" subject="user" inheritable="true" negative="true"/-->
          <!--permission action="/actions/read" subject="user" inheritable="false"/-->

<!-- Permission group example -->
<!--          
          <objectnode classname="org.apache.slide.structure.GroupNode" uri="/users/groupA">
             <objectnode classname="org.apache.slide.structure.LinkNode" uri="/users/groupA/john" linkedUri="/users/john" />
             <objectnode classname="org.apache.slide.structure.LinkNode" uri="/users/groupA/root" linkedUri="/users/root" />
             <objectnode classname="org.apache.slide.structure.SubjectNode" uri="/users/groupA/singleGroupMember"  />
          </objectnode>
-->
<!-- /users/root represents the administrator -->
          
          <objectnode classname="slideroles.basic.RootRoleImpl" uri="/users/root">
            <revision>
              <property name="password">root</property>
            </revision>
          </objectnode>
          
<!-- /users/account represents an authenticated user -->
          
          <objectnode classname="slideroles.basic.UserRoleImpl" uri="/users/account">
            <revision>
              <property name="password">account</property>
            </revision>
          </objectnode>
          
<!-- /users/creative represents an authenticated user -->
          
          <objectnode classname="slideroles.basic.UserRoleImpl" uri="/users/creative">
            <revision>
              <property name="password">creative</property>
            </revision>
          </objectnode>          
          
<!-- /users/guest represents an authenticated or unauthenticated guest user -->
                    
          <objectnode classname="slideroles.basic.GuestRoleImpl" uri="/users/guest">
            <revision>
              <property name="password"></property>
            </revision>
          </objectnode>
          
        </objectnode>
<!-- END USER DECLARATION -->
        
<!-- ACTIONS DECLARATION -->        
        <objectnode classname="org.apache.slide.structure.ActionNode" uri="/actions">          
          <objectnode classname="org.apache.slide.structure.ActionNode" uri="/actions/read"/>         
          <objectnode classname="org.apache.slide.structure.ActionNode" uri="/actions/write"/>          
          <objectnode classname="org.apache.slide.structure.ActionNode" uri="/actions/manage"/>          
        </objectnode>
<!-- END ACTIONS DECLARATION -->        
        
<!-- FILES DESCRIPTION -->        
<!-- /files represents the root for the files content store -->        
        <objectnode classname="org.apache.slide.structure.SubjectNode" uri="/files">
	  <permission action="/actions/read" subject="nobody"/>
<!-- the root for the account group -->	  
	  <objectnode classname="org.apache.slide.structure.SubjectNode" uri="/files/account">
	    <permission action="/actions/manage" subject="/users/account"/>
            <permission action="/actions/write" subject="/users/account"/>
            <permission action="/actions/read" subject="/users/account"/>
	  </objectnode>
<!-- the root for the creative group -->	  
	  <objectnode classname="org.apache.slide.structure.SubjectNode" uri="/files/creative">
	    <permission action="/actions/manage" subject="/users/creative"/>
            <permission action="/actions/write" subject="/users/creative"/>
            <permission action="/actions/read" subject="/users/creative"/>	  
	  </objectnode>                   
        </objectnode>
<!-- END FILES DESCRIPTION -->        

      </objectnode>      
    </data>    
  </namespace>
  
</slide>

Reply via email to